NHS service accidentally reveals identities of HIV patients in email blunder

An NHS health board has found itself in the awkward position of apologising to 37 HIV patients, after accidentally disclosing their identities.

1 min read

Data protection authority reports itself to itself after data breach

The Dutch Data Protection Authority has confessed to making the same kind of mistake that many others have made before – sending out an email with a long list of email addresses listed for all to see in the Cc: rather than hidden away via the Bcc: field.

56 sec read

VFEmail suffers ‘catastrophic’ attack, as hacker wipes email service’s primary and backup data

There will be many angry customers of VFEmail who will be distraught at the thought that years’ worth of irreplaceable personal and business correspondence may have been wiped out. It’s understandable that some might turn their fury towards VFEmail.

But VFEmail is a victim too.

1 min read

International email bomb hoax proves to be a spectacular failure

Authorities in the United States, Canada, Australia, and New Zealand are said to be investigating a wave of bogus bomb threats that have been sent to a variety of organisations late on Thursday.

But if the hoaxer thought they were going to make a lot of money through the scam, they’re going to be disappointed.

2 min read

Smashing Security #105: Facebook, Nietzsche, Tesla, and Nicole

Tesla takes customer service a step too far, is it a romantic gesture or stalking when you email 246 women called Nicole, and Carole finds herself in a Facebook dilemma.

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Jessica Barker.

1 min read

US Dept of State says attack on email system exposed employees’ personal data

The US Department of State has confirmed that it has suffered a data breach which exposed the personally identifiable information of some employees.

1 min read

Making millions out of prisoners’ email

Big business turns a blind eye to the human cost of exploiting US prisoners and their loved ones.

51 sec read

£200,000 fine for exposing possible child abuse victims in classic Cc/Bcc email blunder

The Independent Inquiry into Child Sexual Abuse (IICSA) has been fined £200,000 for revealing identities of abuse victims in a mass email.

2 min read

Smashing Security #083: Fake email derails clarinetist’s dream

Hell hath no fury like a jealous clarinetist’s girlfriend! Your Google ChromeCast could be letting stalkers find out where you live! And why on earth is Graham recommending people write their passwords down in a book!?

Learn more in the latest episode of the award-winning “Smashing Security” podcast, with hosts Graham Cluley and Carole Theriault.

1 min read

Despite Efail, the sky is not falling

The Efail attack on encrypted emails is sneaky, but it doesn’t seem to be all that it’s hyped up to be.

2 min read

Critical vulnerabilities in PGP/GPG and S/MIME email encryption, warn researchers

Brace yourself, there’s a security scare involving encrypted email that could see your past sensitive messages exposed.

It’s name? “Efail.”

1 min read

This company deliberately deleted its customer email mailing list. Maybe you should too

With much tougher data protection regulations coming into force in May 2018 in the form of GDPR, it may be a canny move to securely wipe such information sooner rather than later.

2 min read

Watch this webinar to learn about email security threats

Email security matters. Check out this free webinar where I discuss the threats.

43 sec read

Smashing Security podcast: Email attachment malware

Email attachment malware is the thorny topic tackled by computer security veterans Graham Cluley, Carole Theriault and Vanja Svajcer in this special “splinter” episode from the Smashing Security podcast team.

33 sec read

Hacker who stole celebrity emails, sex videos, movie scripts gets five years in prison

Alonzo Knowles was sentenced to five years in prison after being found guilty in a separate case involving the hacking of female celebrities’ online accounts

Read more in my article on the We Live Security blog.

0 sec read

Yahoo accused of deliberately making it hard to close your account

It’s not as easy to up sticks and leave your Yahoo account for dead as it used to be…

1 min read